Crawl4ai

The OpenClaw AgentSkills skill bundle 'crawl4ai' is classified as suspicious. While its primary purpose is benign web scraping, it provides powerful capabilities that, if misused by a malicious prompt to the AI agent, could lead to harmful actions. Specifically, the `AsyncWebCrawler` allows arbitrary network requests to any URL and the `js_code` parameter enables the execution of arbitrary JavaScript within the browser context of the scraped page (as seen in `SKILL.md`, `references/api_reference.md`, and `references/examples.md`). Although there is no explicit malicious intent or instructions for the agent to perform harmful actions within the skill's own files, these broad capabilities present a significant attack surface for prompt injection or other forms of misuse against the agent, allowing it to potentially access sensitive data or perform unauthorized actions on external websites.